$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/de0c31a3-1155-4ffe-8487-c0a0eb6237d6.roa File: de0c31a3-1155-4ffe-8487-c0a0eb6237d6.roa (raw, json) Hash identifier: /yQm7zVQhsu+AnUcfytkcVhn/ZkgWzTKP9vfS1q0YaQ= Subject key identifier: 0F:C8:5C:63:55:A6:53:E2:71:A3:74:DE:F0:BE:09:04:8D:E5:2F:86 Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 53D30A82450FCECE947B203CE48AC55987927314 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/de0c31a3-1155-4ffe-8487-c0a0eb6237d6.roa Signing time: Mon 21 Apr 2025 15:40:28 +0000 ROA not before: Mon 21 Apr 2025 15:40:28 +0000 ROA not after: Mon 26 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2406:dafb:4880::/46 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Apr 2025 00:01:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 53:d3:0a:82:45:0f:ce:ce:94:7b:20:3c:e4:8a:c5:59:87:92:73:14 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Apr 21 15:40:28 2025 GMT Not After : May 26 23:59:59 2025 GMT Subject: serialNumber=703215a601bdc470ed89644ecc8a3909f82bde1b0d29c7df4bec7e3691470f4c, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:2b:df:73:c4:87:cc:6c:45:56:f9:30:a6:29: 6a:86:2a:1c:39:da:8d:e4:36:51:5c:b7:86:df:11: f8:df:e5:1b:95:8e:7c:4d:9d:04:72:62:a4:c8:5c: 4b:f2:33:2c:c1:cb:75:b8:fb:82:f0:72:f4:d0:d2: 06:40:55:a0:46:74:b7:db:10:b0:03:05:6e:72:31: 03:e2:af:a6:83:e0:a7:eb:aa:ce:f3:fe:e4:5f:14: 20:57:34:ab:82:6e:66:bf:72:58:05:67:d0:92:09: cc:1d:a3:ed:88:10:2e:75:3d:4a:8c:b5:e1:d2:1e: a4:74:30:ee:34:a9:89:67:b7:e0:30:71:ea:cc:47: ef:ef:3a:90:aa:19:96:3c:a1:1d:f7:67:d5:3f:2d: 24:db:e2:fd:63:28:b2:ef:92:42:3e:fe:67:90:d3: bb:aa:be:d2:ec:dc:ae:f8:d8:91:66:41:5d:f3:f1: de:5b:c9:fa:17:fe:91:41:af:82:41:9d:5d:01:b3: 95:5a:28:bb:03:74:58:d0:93:d8:b4:ba:df:65:d9: 80:39:8f:ea:d3:1d:d3:91:36:d7:86:d6:a8:df:c5: 93:df:f5:67:b3:66:f1:51:20:d3:fc:ff:6c:1f:f6: d2:d5:08:aa:b6:f3:d5:80:0f:53:7d:73:74:e7:a3: 05:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0F:C8:5C:63:55:A6:53:E2:71:A3:74:DE:F0:BE:09:04:8D:E5:2F:86 X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/de0c31a3-1155-4ffe-8487-c0a0eb6237d6.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:dafb:4880::/46 Signature Algorithm: sha256WithRSAEncryption cb:cf:06:53:ce:db:c6:7b:78:76:e5:c9:67:9b:80:38:bb:8f: 29:4a:ef:d9:48:17:e5:ea:e3:c5:0b:79:81:57:88:a1:e1:56: 05:8e:a4:e7:91:db:a7:4a:b6:59:a4:1a:16:96:5a:5e:7e:5b: 8c:27:44:15:9d:45:19:b7:49:af:43:fb:78:1b:13:ea:b3:59: 58:98:34:88:2a:c0:e3:c3:54:43:bd:d4:e6:14:57:38:08:61: 1e:82:4e:ca:eb:3f:0f:c4:9a:30:ef:63:a4:22:67:3c:57:9e: 53:17:73:70:50:ea:39:75:e9:42:e4:80:a8:7f:79:ec:86:2f: 91:8b:ad:84:42:bb:1c:5d:72:c9:a6:ca:da:12:3e:26:b7:7a: 56:70:f1:15:d2:f3:d1:ec:2b:03:ed:6d:52:b4:85:97:5a:e4: b9:41:74:25:70:1a:24:cb:eb:07:2e:74:b4:a2:f6:df:a7:f7: 78:ca:2f:3f:fc:5c:34:21:04:46:e5:9e:08:75:f2:b5:37:04: 68:1e:f2:14:d7:d4:5a:22:0d:8b:f7:f2:4e:40:50:45:fb:16: 17:5a:7a:84:ce:5b:da:b1:69:1a:63:3a:bc:fb:e4:86:88:5c: 7b:f0:e3:1c:43:41:22:7e:1e:ef:d4:3b:fb:06:13:3a:7c:52: a9:1d:72:65 -----BEGIN CERTIFICATE----- MIIFnzCCBIegAwIBAgIUU9MKgkUPzs6UeyA85IrFWYeScxQwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI1MDQyMTE1NDAyOFoX DTI1MDUyNjIzNTk1OVowejFJMEcGA1UEBRNANzAzMjE1YTYwMWJkYzQ3MGVkODk2 NDRlY2M4YTM5MDlmODJiZGUxYjBkMjljN2RmNGJlYzdlMzY5MTQ3MGY0YzEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtSvfc8SHzGxFVvkwpilqhiocOdqN 5DZRXLeG3xH43+UblY58TZ0EcmKkyFxL8jMswct1uPuC8HL00NIGQFWgRnS32xCw AwVucjED4q+mg+Cn66rO8/7kXxQgVzSrgm5mv3JYBWfQkgnMHaPtiBAudT1KjLXh 0h6kdDDuNKmJZ7fgMHHqzEfv7zqQqhmWPKEd92fVPy0k2+L9Yyiy75JCPv5nkNO7 qr7S7Nyu+NiRZkFd8/HeW8n6F/6RQa+CQZ1dAbOVWii7A3RY0JPYtLrfZdmAOY/q 0x3TkTbXhtao38WT3/Vns2bxUSDT/P9sH/bS1QiqtvPVgA9TfXN056MFMQIDAQAB o4ICSzCCAkcwHQYDVR0OBBYEFA/IXGNVplPicaN03vC+CQSN5S+GMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx L2RlMGMzMWEzLTExNTUtNGZmZS04NDg3LWMwYTBlYjYyMzdkNi5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcCJAba+0iAMA0GCSqGSIb3DQEBCwUAA4IBAQDLzwZTztvGe3h25cln m4A4u48pSu/ZSBfl6uPFC3mBV4ih4VYFjqTnkdunSrZZpBoWllpefluMJ0QVnUUZ t0mvQ/t4GxPqs1lYmDSIKsDjw1RDvdTmFFc4CGEegk7K6z8PxJow72OkImc8V55T F3NwUOo5delC5ICof3nshi+Ri62EQrscXXLJpsraEj4mt3pWcPEV0vPR7CsD7W1S tIWXWuS5QXQlcBoky+sHLnS0ovbfp/d4yi8//Fw0IQRG5Z4IdfK1NwRoHvIU19Ra Ig2L9/JOQFBF+xYXWnqEzlvasWkaYzq8++SGiFx78OMcQ0Eifh7v1Dv7BhM6fFKp HXJl -----END CERTIFICATE-----Generated at Thu Apr 24 04:33:52 2025 by rpki-client on console.sobornost.net